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IN THE CLAIMS : 

Please amend the claims as follows. 

1. (Original) A method of conducting a secure transaction with an on-line service 
while offline comprising the steps of issuing a transaction authorization token to a user from an 
application server for the on-line service while the user is online; preparing an off-line 
transaction object containing data to specify and request the transaction; sending a message to 
the on-line service, said message containing the transaction object and the authorization token; 
upon receipt of the message, the application server validating the token to authenticate the user 
and to authorize the transaction; and executing the transaction object if the transaction is 
authorized. 

2. (Original) The method of claim 1 , wherein the token is issued to the user via an 
e-mail message sent from the application server. 

3. (Original) The method of claim 1, wherein the token is issued to the user via a 
download operation while the user is on-line. 

4. (Original) The method of claim 1, wherein the user prepares the transaction 
object off-line. 

5. (Original) The method of claim 1, wherein the on-line service comprises the 
application server, and the user requests the token for the transaction from the application 
server. 

6. (Original) The method of claim 5, Wherein the application server accesses a 
database. 

7. (Original) The method of claim 1, wherein the token comprises a unique 
identifier that is generated by the on-line service when the token is issued. 
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8. (Original) The metliod of claim 1, wherein the token is a one-way encryption of 
at least one of an identity of the user, a transaction type, and a data object for which the 
transaction is authorized, 

9. (Original) The method of claim 2, wherein the application server receives an 
incoming message including the token, checks the token for validity, and accepts or rejects the 
token. 

10. (Original) The method of claim 9, wherein the message delivering the token and 
off-line transaction from the user to the application server is an e-mail message delivered, to 
the application server via an asynchronous e-mail delivery method. 

11. (Original) The method of claim 10 where the asynchronous delivery mechanism 
is database record synchronization. 

12. (Original) The method of claim 11 where the asynchronous e-mail delivery 
method comprises a synchronization of data between a portable computing device and an on- 
line service. 

13. (Original) The method of claim 1, wherein the token includes data representing a 
time period during which the token is valid. 

14. (Original) The method of claim 1, wherein the token includes data representing a 
valid access duration for the token. 

15. (Original) The method of claim !. wherein the token specifies an e-mail audit 
signature, and said token is valid only if the transaction is sent from an e-mail program 

via an e-mail delivery path that matches the e-mail audit signature. 

16. (Original) The method of Claim 15, wherein an e-mail address to which the 
message is sent varies according to an authorized data object and transaction type. 
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17. (Original) The method of claim 1, further comprising encrypting the transaction 

object. 

18. (Original) The method of claim 17, wherein said encrypting comprises issuing a 
temporary public key that is a one-way encryption function of an address to which the 
transaction is to be sent for encryption of the transaction object. 

19. (Original) The method of claim 1, wherein the token is contained in a body or a 
header of an e-mail message. 

20. (Original) The method of claim 1 , wherein the token and the transaction object 
are attachments to an e-mail message. 

21. (Original) The method of claim 11, wherein the application server ensures that 
the token can only be used once, by authorizing a specific transaction by a specific user on 
specific data objects. 

22. (Original) The method of claim 1, wherein the application server is a web-based 
application server. 

23. (Original) The method of claim 1, whereon said transaction is selected from the 
group consisting of a database modification, update, adding a file, and editing a file. 

24. (Original) The method of claim 23 further comprising checking out a file, editing 
the file off-line, and checking in the file as an e-mail attachment. 

25. (Original) The method of claim 1, further comprising authenticating the user with 
a password and a network identity while the user is accessing the on-line service. 

26. (Original) The method of claim 1, wherein the user comprises a software agent 
that 2 conducts the transaction on behalf of the user. 
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27. (New) The method of claim 1, wherein the user sends the message to the on-line 
service while the user is offline from the application server. 

28. (New) The method of claim 27, wherein the message to the on-line service is 
sent via email. 



